metaclassing /
PHP7-Laravel5-EnterpriseAuth
@@ -72,7 +72,7 @@ |
||
| 72 | 72 | $destination = $request->session() |
| 73 | 73 | ->get('oauthIntendedUrl'); |
| 74 | 74 | // If there is no intended destination url, use the default |
| 75 | - if (! $destination) { |
|
| 75 | + if (!$destination) { |
|
| 76 | 76 | $destination = config('enterpriseauth.redirect_on_login'); |
| 77 | 77 | } |
| 78 | 78 | \Illuminate\Support\Facades\Log::info('AUTH success USER ID '.$user->id.' with redirect url '.$destination); |
@@ -40,7 +40,7 @@ discard block |
||
| 40 | 40 | public function redirectToOauthAdminConsent(\Illuminate\Http\Request $request) |
| 41 | 41 | { |
| 42 | 42 | $url = $this->azureActiveDirectory->buildAdminConsentUrl(config('enterpriseauth.credentials.client_id'), |
| 43 | - config('enterpriseauth.credentials.callback_url')); |
|
| 43 | + config('enterpriseauth.credentials.callback_url')); |
|
| 44 | 44 | //return new \Illuminate\Http\RedirectResponse($url); |
| 45 | 45 | return redirect($url); |
| 46 | 46 | } |
@@ -57,8 +57,8 @@ discard block |
||
| 57 | 57 | public function buildAuthUrl() |
| 58 | 58 | { |
| 59 | 59 | $url = $this->azureActiveDirectory->authorizationEndpoint |
| 60 | - .'?' |
|
| 61 | - .$this->buildAuthUrlQueryString(); |
|
| 60 | + .'?' |
|
| 61 | + .$this->buildAuthUrlQueryString(); |
|
| 62 | 62 | |
| 63 | 63 | return $url; |
| 64 | 64 | } |
@@ -100,7 +100,7 @@ discard block |
||
| 100 | 100 | |
| 101 | 101 | // Check to see if there is an intended destination url saved |
| 102 | 102 | $destination = $request->session() |
| 103 | - ->get('oauthIntendedUrl'); |
|
| 103 | + ->get('oauthIntendedUrl'); |
|
| 104 | 104 | // If there is no intended destination url, use the default |
| 105 | 105 | if (! $destination) { |
| 106 | 106 | $destination = config('enterpriseauth.redirect_on_login'); |
@@ -126,7 +126,7 @@ discard block |
||
| 126 | 126 | 'client_secret' => config('enterpriseauth.credentials.client_secret'), |
| 127 | 127 | 'redirect_uri' => config('enterpriseauth.credentials.callback_url'), |
| 128 | 128 | 'grant_type' => 'authorization_code', |
| 129 | - ], |
|
| 129 | + ], |
|
| 130 | 130 | ]; |
| 131 | 131 | $response = $guzzle->post($url, $parameters); |
| 132 | 132 | $responseObject = json_decode($response->getBody()); |
@@ -39,8 +39,8 @@ discard block |
||
| 39 | 39 | $graph = new \Microsoft\Graph\Graph(); |
| 40 | 40 | $graph->setAccessToken($accessToken); |
| 41 | 41 | $user = $graph->createRequest('GET', '/me') |
| 42 | - ->setReturnType(\Microsoft\Graph\Model\User::class) |
|
| 43 | - ->execute(); |
|
| 42 | + ->setReturnType(\Microsoft\Graph\Model\User::class) |
|
| 43 | + ->execute(); |
|
| 44 | 44 | |
| 45 | 45 | return $user->jsonSerialize(); |
| 46 | 46 | } |
@@ -131,9 +131,9 @@ discard block |
||
| 131 | 131 | if (count($groups)) { |
| 132 | 132 | // remove the users existing database roles before assigning new ones |
| 133 | 133 | \DB::table('assigned_roles') |
| 134 | - ->where('entity_id', $user->id) |
|
| 135 | - ->where('entity_type', get_class($user)) |
|
| 136 | - ->delete(); |
|
| 134 | + ->where('entity_id', $user->id) |
|
| 135 | + ->where('entity_type', get_class($user)) |
|
| 136 | + ->delete(); |
|
| 137 | 137 | // add the user to each group they are assigned |
| 138 | 138 | $user->assign($groups); |
| 139 | 139 | } |
@@ -49,7 +49,7 @@ discard block |
||
| 49 | 49 | public function scrubMicrosoftGraphUserData($userData) |
| 50 | 50 | { |
| 51 | 51 | // Fix any stupid crap with missing or null fields |
| 52 | - if (! isset($userData['mail']) || ! $userData['mail']) { |
|
| 52 | + if (!isset($userData['mail']) || !$userData['mail']) { |
|
| 53 | 53 | $userData['mail'] = $userData['userPrincipalName']; |
| 54 | 54 | } |
| 55 | 55 | |
@@ -64,7 +64,7 @@ discard block |
||
| 64 | 64 | // Try to find an existing user |
| 65 | 65 | $user = $userType::where($userIdField, $userData['id'])->first(); |
| 66 | 66 | // If we dont have an existing user |
| 67 | - if (! $user) { |
|
| 67 | + if (!$user) { |
|
| 68 | 68 | // Go create a new one with this data |
| 69 | 69 | $user = $this->createUserFromAzureData($userData); |
| 70 | 70 | } |
@@ -96,7 +96,7 @@ discard block |
||
| 96 | 96 | public function certAuth() |
| 97 | 97 | { |
| 98 | 98 | // Make sure we got a client certificate from the web server |
| 99 | - if (! $_SERVER['SSL_CLIENT_CERT']) { |
|
| 99 | + if (!$_SERVER['SSL_CLIENT_CERT']) { |
|
| 100 | 100 | throw new \Exception('TLS client certificate missing'); |
| 101 | 101 | } |
| 102 | 102 | // try to parse the certificate we got |
@@ -105,7 +105,7 @@ discard block |
||
| 105 | 105 | $asciicert = str_replace("\t", '', $_SERVER['SSL_CLIENT_CERT']); |
| 106 | 106 | $x509->loadX509($asciicert); |
| 107 | 107 | $names = $x509->getExtension('id-ce-subjectAltName'); |
| 108 | - if (! $names) { |
|
| 108 | + if (!$names) { |
|
| 109 | 109 | throw new \Exception('TLS client cert missing subject alternative names'); |
| 110 | 110 | } |
| 111 | 111 | // Search subject alt names for user principal name |
@@ -119,12 +119,12 @@ discard block |
||
| 119 | 119 | } |
| 120 | 120 | } |
| 121 | 121 | } |
| 122 | - if (! $upn) { |
|
| 122 | + if (!$upn) { |
|
| 123 | 123 | throw new \Exception('Could not find user principal name in TLS client cert'); |
| 124 | 124 | } |
| 125 | 125 | $user_class = config('enterpriseauth.user_class'); |
| 126 | 126 | $user = $user_class::where('userPrincipalName', $upn)->first(); |
| 127 | - if (! $user) { |
|
| 127 | + if (!$user) { |
|
| 128 | 128 | throw new \Exception('No user found with user principal name '.$upn); |
| 129 | 129 | } |
| 130 | 130 | //dd($user); |
@@ -56,7 +56,7 @@ |
||
| 56 | 56 | $roles = $user->roles()->get()->all(); |
| 57 | 57 | foreach ($roles as $key => $role) { |
| 58 | 58 | $role->permissions = $role->abilities()->get()->all(); |
| 59 | - if (! count($role->permissions)) { |
|
| 59 | + if (!count($role->permissions)) { |
|
| 60 | 60 | unset($roles[$key]); |
| 61 | 61 | } |
| 62 | 62 | } |
@@ -47,7 +47,7 @@ discard block |
||
| 47 | 47 | // Go through all the credential config and make sure they are set in the .env or config file |
| 48 | 48 | foreach (config('enterpriseauth.credentials') as $config => $env) { |
| 49 | 49 | // If one isnt set, throw a red flat until the person fixes it |
| 50 | - if (! config('enterpriseauth.credentials.'.$config)) { |
|
| 50 | + if (!config('enterpriseauth.credentials.'.$config)) { |
|
| 51 | 51 | throw new \Exception('enterpriseauth setup error: missing mandatory config value for enterpriseauth.credentials.'.$config.' check your .env file!'); |
| 52 | 52 | } |
| 53 | 53 | } |
@@ -59,7 +59,7 @@ discard block |
||
| 59 | 59 | // Override the application configuration to use our oauth token guard driver at runtime |
| 60 | 60 | config(['auth.guards.api.driver' => 'oauthtoken']); |
| 61 | 61 | // Now I have a machine gun. ho ho ho! |
| 62 | - \Illuminate\Support\Facades\Auth::extend('oauthtoken', function ($app, $name, array $config) { |
|
| 62 | + \Illuminate\Support\Facades\Auth::extend('oauthtoken', function($app, $name, array $config) { |
|
| 63 | 63 | $userProvider = \Illuminate\Support\Facades\Auth::createUserProvider($config['provider']); |
| 64 | 64 | |
| 65 | 65 | return new \Metaclassing\EnterpriseAuth\Middleware\OauthTokenGuard($userProvider, $app->make('request')); |
@@ -69,13 +69,13 @@ discard block |
||
| 69 | 69 | protected function configureSwaggerToScanEnterpriseAuthRouteFiles() |
| 70 | 70 | { |
| 71 | 71 | $swaggerScanPaths = config('l5-swagger.paths.annotations'); |
| 72 | - if (! is_array($swaggerScanPaths)) { |
|
| 72 | + if (!is_array($swaggerScanPaths)) { |
|
| 73 | 73 | $swaggerScanPaths = [$swaggerScanPaths]; |
| 74 | 74 | } |
| 75 | - if (! in_array(base_path('routes'), $swaggerScanPaths)) { |
|
| 75 | + if (!in_array(base_path('routes'), $swaggerScanPaths)) { |
|
| 76 | 76 | $swaggerScanPaths[] = base_path('routes'); |
| 77 | 77 | } |
| 78 | - if (! in_array(__DIR__.'/../routes/', $swaggerScanPaths)) { |
|
| 78 | + if (!in_array(__DIR__.'/../routes/', $swaggerScanPaths)) { |
|
| 79 | 79 | $swaggerScanPaths[] = __DIR__.'/../routes/'; |
| 80 | 80 | } |
| 81 | 81 | config(['l5-swagger.paths.annotations' => $swaggerScanPaths]); |
@@ -85,7 +85,7 @@ discard block |
||
| 85 | 85 | { |
| 86 | 86 | // If the routes files for the swagger oauth config is NOT present, and we have all the right info, then generate it really quick |
| 87 | 87 | $swaggerAzureadFile = __DIR__.'/../routes/swagger.azuread.php'; |
| 88 | - if (! file_exists($swaggerAzureadFile)) { |
|
| 88 | + if (!file_exists($swaggerAzureadFile)) { |
|
| 89 | 89 | $aad = new AzureActiveDirectory(config('enterpriseauth.credentials.tenant')); |
| 90 | 90 | //$authorizationUrl = $aad->authorizationEndpoint . '?resource=https://graph.microsoft.com'; |
| 91 | 91 | $authorizationUrl = $aad->authorizationEndpoint; |
@@ -1,19 +1,19 @@ |
||
| 1 | 1 | <?php |
| 2 | 2 | |
| 3 | -Route::middleware([config('enterpriseauth.routes.middleware')])->group(function () { |
|
| 3 | +Route::middleware([config('enterpriseauth.routes.middleware')])->group(function() { |
|
| 4 | 4 | Route::get(config('enterpriseauth.routes.login'), 'Metaclassing\EnterpriseAuth\Controllers\WebAuthController@redirectToOauthProvider'); |
| 5 | 5 | Route::get(config('enterpriseauth.routes.logout'), 'Metaclassing\EnterpriseAuth\Controllers\WebAuthController@logoutFromOauthProvider'); |
| 6 | 6 | Route::get(config('enterpriseauth.routes.callback'), 'Metaclassing\EnterpriseAuth\Controllers\WebAuthController@handleOauthResponse'); |
| 7 | 7 | Route::get(config('enterpriseauth.routes.adminconsent'), 'Metaclassing\EnterpriseAuth\Controllers\WebAuthController@redirectToOauthAdminConsent'); |
| 8 | 8 | |
| 9 | 9 | // This handles a situation where a route with the NAME of login does not exist, we define it to keep from breaking framework redirects hard coded |
| 10 | - if (! \Route::has('login')) { |
|
| 10 | + if (!\Route::has('login')) { |
|
| 11 | 11 | Route::get('login', 'Metaclassing\EnterpriseAuth\Controllers\WebAuthController@loginOrRegister')->name('login'); |
| 12 | 12 | } |
| 13 | - if (! \Route::has('register')) { |
|
| 13 | + if (!\Route::has('register')) { |
|
| 14 | 14 | Route::get('register', 'Metaclassing\EnterpriseAuth\Controllers\WebAuthController@loginOrRegister')->name('register'); |
| 15 | 15 | } |
| 16 | - if (! \Route::has('logout')) { |
|
| 16 | + if (!\Route::has('logout')) { |
|
| 17 | 17 | Route::get('logout', 'Metaclassing\EnterpriseAuth\Controllers\WebAuthController@logout')->name('logout'); |
| 18 | 18 | } |
| 19 | 19 | }); |
@@ -13,7 +13,7 @@ |
||
| 13 | 13 | */ |
| 14 | 14 | public function up() |
| 15 | 15 | { |
| 16 | - Schema::create('azure_apps', function (Blueprint $table) { |
|
| 16 | + Schema::create('azure_apps', function(Blueprint $table) { |
|
| 17 | 17 | // Auto increment for unique id |
| 18 | 18 | $table->increments('id'); |
| 19 | 19 | // Some human readable name |
